WASHINGTON – Sen. John Kennedy (R-La.) penned this op-ed for National Review. Below are key excerpts from the piece explaining why Congress should pass the Homeland and Cyber Threat (HACT) Act to help combat cyberpredators and give cyberattack victims the right to seek monetary compensation.
“Foreign cyberattacks hurt everyday Americans, and those victims need a way to get justice from foreign governments that sponsor the criminal attackers. U.S. law already allows victims of international terrorism to sue foreign states that sponsor terrorist attacks, but the law deprives cyberattack victims of a similar recourse—and America’s enemies know it.
“ Long before Vladimir Putin invaded Ukraine, he was making Russia a haven for cybercriminals. Not only does the Kremlin provide safe harbor for these criminals, but Russian intelligence agencies sometimes even employ them. This arrangement allows Russian hackers to launch cyberattacks on Americans while the Russian government maintains plausible deniability.
“Last May, foreign hackers with likely ties to Russia struck again. They hit the Colonial Pipeline by cutting the company off from its own data until it paid a $4.4 million ransom to restore access.”
. . .
“Firms such as the Colonial Pipeline and JBS eventually recovered from these cyberattacks, but small businesses are more vulnerable. Main-street shops don’t have the financial resources or the cybersecurity systems that big companies enjoy. That makes them prime targets for digital terrorists.”
. . .
“Americans need an effective way to seek justice and compensation from the foreign governments that aid cyberterrorists. That’s why Congress should pass the Homeland and Cyber Threat (HACT) Act.
“The Foreign Sovereign Immunities Act became law in 1976, long before the days of the Internet, and the HACT Act would bring the Foreign Sovereign Immunities Act in line with modern technology. The HACT Act would give American citizens the right to seek monetary compensation for damages suffered and hold foreign officials, employees, and agents accountable for sponsoring cyberterrorism. Companies and individual Americans who have had their private data hacked would have a path to justice from the people responsible for their pain. By imposing a cost on the foreign regimes that launch these attacks, the bill would help deter future cyberterrorism.”
. . .
“If American citizens are already able to sue foreign governments for contributing to terrorism, why shouldn’t they be able to sue governments that help cyberpredators violate their privacy and steal their data?
“The Foreign Sovereign Immunities Act needs an update. Americans have already suffered too much at the hands of foreign cybercriminals.”
The op-ed is available here.